fix transitive dependency vulnerability

* https://snyk.io/vuln/SNYK-JAVA-COMMONSCODEC-561518

Signed-off-by: Jamin W. Collins <jamin.collins@gmail.com>

forge-gui-android/pom.xml

@@ -59,6 +59,12 @@
             <artifactId>httpclient</artifactId>
             <version>4.5.13</version>
         </dependency>
+        <!-- declare a specific dependency to override org.apache.httpcomponents's transitive dependency -->
+        <dependency>
+            <groupId>commons-codec</groupId>
+            <artifactId>commons-codec</artifactId>
+            <version>1.15</version>
+        </dependency>
         <dependency>
             <groupId>forge</groupId>
             <artifactId>forge-core</artifactId>